Hackers & Cheaters & Butthurt, Oh My...

Just found and saw this on YouTube. Is it really this bad in general in the Rust community? It really makes cringe and terrified to be a server admin. Is anything even being done about this? I have seen little to no blog-posts or updates in regards to security and anti-cheat both on Steam/Valve side and Facepunch. What do you guys think?

Rust Hackers

 

Fully protecting fast games from hacking is impossible.
What the vid is showing isn't special, and the argument that Rust is hacker infested because there are a few hacks that offer a lot of features is pretty weak (not denying that there are many hackers, just saying that the video is absolutely pointless for the argument the OP is making).
Server sided anticheat *needs* to be local to the server, otherwise any server you join could ban you from all Rust servers!
Also, it should be noted that VAC doesn't ban instantly, and detecting paid hacks usually means that someone needs to reverse engineer those hacks, which often means paying for them in the first place.

If you're worried about hacking, do not host FPS games. Just drop them altogether. Neither one of them can properly protect against the issue, and you'll find that it's an issue in every single FPS game, ever (in fact, every fast game ever!).

 

Doesn't help that the video is semi-old, and the antihack has gotten at least a little better since then.

 

Oh I'm definitely aware of the issues related to hosting ANY server in general, doesn't even have to be a game server. I whole-heartedly agree with everything you're saying, especially about better server-side anti-cheat protection. I was simply curious as to what the Oxide community thought about this, or what their and your experience is with these sort of hacks. Maybe if anyone knows how they can be detected or prevented altogether. I would surmise there should be a way for a game-server to run checks on every users connection, and make sure the commands being sent and received are within normal parameters; i.e. no extra code has been embedded or is being sent that allows people these additional features. However my forte is not with coding, it is solely with networking. I can harden the hell out of a Linux box, Apache, databases, Cpanels and email, not so much a Rust game server

 

I didn't say anything about better server sided protection, but that a global ban as a result of a server sided anti cheat detection isn't possible, because server owners would just be able to spoof the server files to get people added to the global ban database.
What you just described is already provided by EAC. EAC is doing a lot of bounds checks. Keep in mind that servers *cannot* be too strict with bound checks, as things like packet loss can trigger a false detection as well. That's why some things, like slight speedhacks or slight jump boosts, are possible, and there's no good way to protect against that.
Most things in the video are done on the client side. Only VAC can help, and there's nothing you can do about it. I imagine keeping VAC for Rust up to date is one hell of a job.